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Description 

Granting access to a computer-based object 

5 The present invention relates to a method for granting access 
to a computer-based object and to a control program for 
implementing said method." 

Immense losses are incurred worldwide through the unauthorized 
10 use of computer programs. In order to counter these, solutions 
are developed for protecting computer programs against 
unauthorized access. 

A transmission of encoded information for activating a computer 
15 program serves to prevent unauthorized reproductions of the 
computer program being made. Corresponding methods serve, for 
example, also as a technical prerequisite for marketing 
computer programs as products via e-commerce. In previously 
known methods for activating computer programs, computer 
20 programs are released with the aid of a respective registration 
key. In order to release a computer program, the registration 
key, which is permanently assigned to a computer program 
license, is input manually or imported from a data carrier. 
Particularly where there is a plethora of computer programs . 
25 installed on different computers, this results in a high 
administrative outlay which is associated with personnel- 
intensive operating and maintenance work. 

From EP 1 191 419 A2 a method is known in which predeterminable 
30 functions of a computer program can be released for a 

selectable period of use through modification of a registration 
key pair. The registration key pair has at least one piece of 
partial information blocked against user access. The functions 
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to be released do not necessarily have already to have been 
available for release when the computer program was initially 
installed but can also be selected for addition subsequently. 
For the release, no deployment of operating or maintenance 
5 personnel is required at the location of the computer on which 
the respective computer program is installed. 

Components of the registration key pair according to the method 
described in EP 1 191 419 A2 are application information and an 
10 application value. The application information is input on a 
first computer on which the computer program to be registered 
is installed, or is generated by said first computer. The 
application value is computed in a second computer from the 
application information by means of coding. 

15 

When a computer program is registered or when the registration 
is changed, first pieces of application information comprising 
at least one piece of partial information that is blocked 
against user access are transmitted to the second computer. In 

20 the second computer, an application value is computed from the 
first pieces of application information, said application value 
subsequently being transmitted to the first computer. By means 
of decoding, second pieces of application information are 
determined in the first computer from the application value. 

25 When execution of the computer program begins, the first and 
the second pieces of application information are checked as to 
whether they match. Depending on the deviations that arise in 
the checking, prede terminable functions of the computer program 
are released. 



The object of the present invention is to specify a method 
which offers increased protection against unauthorized use of 
resources provided in an arithmetic unit as well as an 
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implementation suitable for carrying out the method 
automatically. 

This object is achieved according to the invention by a method 
5 comprising the features specified in claim 1 and in a control 
program comprising the features specified in claim 10. 
Advantageous embodiments of the present invention are specified 
in the dependent claims. 

10 According to the invention, increased protection against 

unauthorized use of resources provided in an arithmetic unit 
results from the fact that, as a prerequisite for granting 
access to a computer-based object, a memory card comprising a 
program code processor and a piece of license information are 

15 provided. At least one public and private key that is allocated 
to the memory card as well as a public key of a trustworthy 
entity are stored on said memory card. The piece of license 
information comprises at least one license code which is 
encoded by means of the public key allocated to the memory card 

20 and is provided on an arithmetic unit that controls access to 
the computer-based object. The encoded license code and a 
declaration, digitally signed by means of the private key of 
the trustworthy entity, of a function to be executed by the 
memory card for decoding the license code are transmitted to 

25 the memory card. The digital signature of the declaration of 

the function to be executed by the memory card is subsequently 
checked. If the result of the check is positive, the function 
for decoding the license code is executed by the memory card 
and a decoded license code is transmitted to the arithmetic 

30 unit. The decoded license code is then provided at least 
temporarily for accessing the computer-based object. 
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'Arithmetic unit' is understood to refer without restricting 
the universality of this term, for example, to PCs, notebooks, 
servers, PDAs, mobile telephones, automatic cash dispensers, 
control modules in automation engineering, automotive 
5 engineering, communication engineering or medical engineering - 
in general, to devices in which computer programs can run. 
Furthermore, computer-based objects are understood to refer 
without restricting the universality of this term to operating 
systems, control or application programs, services, performance 
10 features, functions or procedures provided by operating 
systems, control programs or application programs, access 
rights to peripheral devices and data located on a storage 
medium. 

15 According to an advantageous development of the present 
invention, the public key of the trustworthy entity is 
provided, protected against manipulation, on the arithmetic 
unit. Furthermore, the piece of license information is 
digitally signed by means of a private key of the trustworthy 

20 entity. The digital signature of the piece of license 

information can consequently be checked in the arithmetic unit 
with the aid of the public key of the trustworthy entity. In 
this way, a trustworthy and secure transmission of the piece of 
license information to the arithmetic unit can be ensured. 

25 

Advantageously, the piece of license information additionally 
comprises the public key allocated to the memory card. 
Furthermore, the decoded license code is digitally signed by 
means of the private key allocated to the memory card. The 
30 digital signature of the decoded license code can then be 

checked in the arithmetic unit with the aid of the public key 
allocated to the memory card. This offers the advantage of a 
secure transfer of the decoded license code to the arithmetic 
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unit, coupled with the safeguard that the license code has 
actually been decoded using the memory card provided for 
. decoding . 

5 In addition, the declaration, digitally signed by means of the 
private key of the trustworthy entity, of the function to be 
executed by the memory card for decoding the license code can 
be generated in the arithmetic unit from the encoded license 
code and a signature object. The signature object comprises 

10 only a signature portion of a function call, signed by the 
trustworthy entity, for decoding the license code. This 
embodiment offers the advantage that available secure-messaging 
methods can be used for a transmission of a corresponding 
function call. Furthermore, the piece of license information 

15 can additionally comprise the signature object so a secure 
provision of the signature object can be ensured. 

According to a further advantageous embodiment of the present 
invention, the encoded license code and the declaration, 

20 digitally signed by means of the private key of the trustworthy 
entity, of the function to be executed by the memory card are 
transmitted over a secure communication link from the 
arithmetic unit via a reading device to the memory card. In 
this way, opportunities for manipulation in order to achieve 

25 access to the computer-based object in an unauthorized manner 
are further restricted. 

Advantageously, the digital signature of the declaration of the 
function to be executed by the memory card is checked with the 
30 aid of the public key of the trustworthy entity. This serves to 
prevent an unauthorized decoding of the license code. 
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According to a further embodiment of the present invention, a 
random number is generated ,in the arithmetic unit and said 
. random number transmitted to the memory card. The decoded 
license code is then digitally signed by means of the private 
5 -key allocated to the memory card and by means of the random 
number. The digital signature of the decoded license code is 
finally checked in the arithmetic unit with the aid of the 
public key allocated to the memory card and with the aid of the 
random number. By this means, an effective duplication 
10 protection is produced so that an interception of signals 

exchanged between the memory card and the arithmetic unit does 
not open up any opportunities for manipulation. 

According to a preferred embodiment of the present invention, 
15 for access to be granted to the computer-based object, the 
decoded license code and progress of a checking process are 
compared with a respective set default. This offers additional 
security since presence of the decoded license code alone is no 
longer sufficient for access authorization but is coupled to 
20 successful progress of a checking process. 

The present invention will be explained in detail below with 
reference to an exemplary embodiment with the aid of the 
drawing . 

25 

The figure shows a diagrammatic representation of an . 
application environment of the present invention comprising an 
exchange of pieces of information and messages between a 
trustworthy entity, an arithmetic unit that controls access to 
30 a computer-based object and a memory card comprising a program 
code" processor. 
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The application environment of the present invention 
represented in the figure comprises a trustworthy entity 10, a 
computer 20, a smartcard terminal 30 connected to the computer 
20, in which smartcard terminal a smartcard 40 can be inserted. 
5 The trustworthy entity 10 can, for example, be allocated to a 
manufacturer of software to be protected against unauthorized 
access and takes over the administration of licenses and of 
smartcard-allocated key material. Also allocated to the 
trustworthy entity 10 is an asymmetrical key pair 11 comprising 
10 a private and a public key. In order to store the smartcard- 
allocated key material, a database 12 is provided which 
contains public keys of smartcards which are to be delivered or 
which have already been delivered. 

15 System resources 22, comprising, for example, programs or 

memory areas with data, are made available by the computer 2 0 
for one or more users . The method described here for granting 
access to a computer-based object is in principle applicable to 
any system resources. The computer 2 0 controls in particular 

20 access to the system resources 22, which in the present case 
also comprise software of the manufacturer to which the 
trustworthy entity 10 is allocated. Furthermore, the public key 
21 of the trustworthy entity 10 is provided, protected against 
manipulation, on the computer 20. 

25 

The smartcard terminal 30 is connected to the computer 20 over 
a secure communication link. The smartcard terminal 3 0 serves 
in the exchange of information and messages between the 
computer 20 and a smartcard 40 which can be inserted in the 
30 smartcard terminal 30 and which constitutes' a memory card 

comprising a program code processor. The public key 41 of the 
trustworthy entity 10 as well as an asymmetrical key pair 42 
allocated to the smartcard 40, the asymmetrical key pair 
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comprising a public and a private key of the smartcard 40, are 
stored on the smartcard 40. In addition, at least one program 
is provided on the smartcard 40 for encoding and decoding using 
the' asymmetrical key pair 42 of the smartcard 40 and for 
5 verifying signatures generated by means of the private key of 
the trustworthy entity 10. The verification of signatures is 
effected with the aid of the public key 41 of the trustworthy 
entity 10. In addition, the smartcard 40 has a random number 
generator and preferably conforms to IFO 7816/4. 

10 

A piece of license ■ information 1 created by the trustworthy 
entity 10 is provided on the computer 20. The piece of license 
information 1 comprises a license code encoded by means of the 
public key allocated to the smartcard 40 (enc_SC 

15 (licencecode) ) , the public key (pubjSC) allocated to the 

smartcard 40 and a signature object (DS_Object) . The signature 
object comprises only a signature portion of a function call 
(PSO_DEC - perform security operation mode decrypt) signed by 
the "trustworthy entity 10 for decoding the license code by 

20 means of the smartcard 40. Furthermore, the piece of license 
information 1 is digitally signed (sig_TP) by means of the 
private key of the trustworthy entity 10, so the digital 
signature of the piece of license information 1 can be checked 
in the computer 20 with the aid of the public key 21 of the 

25 trustworthy entity 10. 

In order to achieve duplication protection for the exchange of 
information and messages between the computer 20 and the 
smartcard terminal 30 or the smartcard 40, a random number 
30 (rand) is generated in the computer 20 and this random number 
transmitted by means of a message 2 to the smartcard 40 
(give_random) . The receipt of the random number is acknowledged 
by the smartcard 40 by means of a confirmation message 3. A 
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message 4 for decoding the license code is subsequently 
transmitted from the computer 20 to the smartcard 40. The 
message 4 for decoding the license code comprises a 
declaration, digitally signed by means of the private key of 
5 the trustworthy entity 10, of a function to be executed by the 
smartcard 40 for decoding the license code including the 
encoded license code. 

The declaration, digitally signed by means of the private key 
10 of the trustworthy entity 10, of the function to be executed by 
the smartcard 40 for decoding the license code is generated in 
the computer 20 from the signature object which the piece of 
license information 1 comprises and from the encoded license 
code. In this way, a secure-messaging command (SM_sig_TP) 
15 . signed by the trustworthy entity 10 is created by the computer 
20 on behalf of the trustworthy entity 10, by which means it is 
ensured that the declaration of the function to be executed by 
the smartcard 40 for decoding the license code and the encoded 
license code have actually been issued by the trustworthy 
20 entity 10. 

A check by the smartcard 40 of the digital signature of the 
declaration of the function to be executed by the smartcard 40 
and of an execution of the function for decoding the license 
25 code by the smartcard 40. If the result is positive, for 

protection against attempts at manipulation through formation 
of a shared functional context linked with one another. In 
particular, it is ensured that decoding of the license code is 
possible only by a smartcard provided for the purpose. 

30 

After execution of the function for decoding the license code 
(perform security operation mode decrypt, applied to the > 
license code encoded by means of the public key allocated to 
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the smartcard 40) and decoding, the decoded license code is 
transmitted using secure messaging by means of a message 5 to 
the computer 20. In order to use secure messaging, the decoded 
license code i"s digitally signed by means of the private key 
5 allocated to the smartcard 40 and by means of the random number 
generated by the computer 2 0 (SM_rand_sig_SC) . After 
transmission to the computer 20, the digital signature of the 
decoded license code is checked by the computer 20 with" the aid 
of the public key allocated to the memory card and with the aid 

10 , of the random number. In principle, it would suffice to 

digitally sign the decoded license code solely by means of the 
private key allocated to the smartcard 40 and to check the 
digital signature with the aid of the public key of the 
smartcard 40. However, this would mean foregoing the 

15 duplication protection. Appropriate measures can therefore be 
weighed up accordingly depending on application cases and 
security requirements. 

After the digital signature of the decoded license code has 
20 been checked, said license code is provided at least 

temporarily for accessing the protected software or a computer- 
based object. In order to rule out conceivable opportunities 
for manipulation, the decoded license code and progress of a 
checking process should be matched with a respective set 
25 default before access is granted to the protected software. If 
the match is - successful , then access can be granted. 

Control of the sequence of the method for granting access to 
protected software or a computer-based object is implemented 
30 through a control program which can be loaded in a working 
memory of the computer 20 and has at least one. code section, 
execution of which prompts firstly a transmission to a memory 
card of a license code encoded by means of a public key 
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allocated to said memory card comprising a program code 
processor and of a declaration, digitally signed by means of a 
private key of a trustworthy entity, of a function to.be 
executed by said memory card for decoding said license code. 
5 Furthermore, upon execution of the code section, a check is 
prompted by the memory card of the digital signature of the 
declaration of the function to be executed by the memory card. 
The digital signature of the declaration of the function to be 
executed by the memory card is checked with the aid of the 

10 public key of the trustworthy entity. If the result of the 
check is positive, an execution of the function for decoding 
the license code is prompted by the memory card and an encoded 
license code is transmitted to the computer 20. Finally, upon 
execution of the code section, the decoded license code is 

15 provided at least temporarily for access to the computer-based 
object by the computer 2 0 when the control program is running 
in the computer 20. 

Application of the present invention is not restricted to . the 
20 exemplary embodiment described here. 



